France: Council of State rejected appeals against sanctions on pseudonymised health data and reidentification risk (National Commission on Informatics and Liberty v GERS, Santestat, and Cegedim Santé)

Council of State rejected appeals against sanctions on pseudonymised health data and reidentification risk (National Commission on Informatics and Liberty v GERS, Santestat, and Cegedim Santé)

On 13 February 2026, the Council of State rejected three appeals brought by GERS, including as successor to Santestat, and by Cegedim Santé against administrative fines imposed by the National Commission on Informatics and Liberties (CNIL) for unlaw…

Scope

Policy Area

Data governance

Policy Instrument

Data protection regulation

Regulated Economic Activity

other service provider, software provider: other software

Implementation Level

national

Government Branch

judiciary

Government Body

court

Complete timeline of this policy change

Hide details

2026-02-13

in force

On 13 February 2026, the Council of State rejected three appeals brought by GERS, including as succ…

Description

Council of State rejected appeals against sanctions on pseudonymised health data and reidentification risk (National Commission on Informatics and Liberty v GERS, Santestat, and Cegedim Santé)

Scope

Complete timeline of this policy change